Linux/AIX下双机免密设置

unix/linux 专栏收录该内容
48 篇文章 2 订阅

=============================Linux:

1.用需要免密设置的用户登录serverA

2.配置本机ssh的免密登录:
(1)进入一个路径,比如:cd ~         #进入实例路径/home/db2inst1

(2)执行:  ssh-keygen           来产生公钥私钥      

#产生公钥私钥对会在当前路径下产生一个文件夹.ssh,下面会有两个文件--公钥秘钥对:

[db2inst1@localhost .ssh]$ pwd
/home/db2inst1/.ssh
[db2inst1@localhost .ssh]$ ls -lrt
total 8
-rw-r--r--. 1 db2inst1 db2iadm1  412 May  8 23:36 id_rsa.pub
-rw-------. 1 db2inst1 db2iadm1 1675 May  8 23:36 id_rsa

3. 把本地公钥复制到需要免密的另一台机器server B上
ssh-copy-id -i ~/.ssh/id_rsa.pub db2inst1@serverB_IP_or_hostname
执行该命令时需要输入密码,成功后再次通过ssh db2inst1@serverB_IP_or_hostname 就不需要密码了。

=======================AIX:

AIX中没有ssh-copy-id,可以自己手工写一个,内容如下:

#!/bin/sh
 
# Shell script to install your public key on a remote machine
# Takes the remote machine name as an argument.
# Obviously, the remote machine must accept password authentication,
# or one of the other keys in your ssh-agent, for this to work.
 
ID_FILE="${HOME}/.ssh/id_rsa.pub"
 
if [ "-i" = "$1" ]; then
  shift
  # check if we have 2 parameters left, if so the first is the new ID file
  if [ -n "$2" ]; then
    if expr "$1" : ".*\.pub" > /dev/null ; then
      ID_FILE="$1"
    else
      ID_FILE="$1.pub"
    fi
    shift         # and this should leave $1 as the target name
  fi
else
  if [ x$SSH_AUTH_SOCK != x ] && ssh-add -L >/dev/null 2>&1; then
    GET_ID="$GET_ID ssh-add -L"
  fi
fi
 
if [ -z "`eval $GET_ID`" ] && [ -r "${ID_FILE}" ] ; then
  GET_ID="cat \"${ID_FILE}\""
fi
 
if [ -z "`eval $GET_ID`" ]; then
  echo "$0: ERROR: No identities found" >&2
  exit 1
fi
 
if [ "$#" -lt 1 ] || [ "$1" = "-h" ] || [ "$1" = "--help" ]; then
  echo "Usage: $0 [-i [identity_file]] [user@]machine" >&2
  exit 1
fi
 
# strip any trailing colon
host=`echo $1 | sed 's/:$//'`
 
{ eval "$GET_ID" ; } | ssh $host "umask 077; test -d ~/.ssh || mkdir ~/.ssh ; cat >> ~/.ssh/authorized_keys" || exit 1
 
cat <<EOF
Now try logging into the machine, with "ssh '$host'", and check in:
 
  ~/.ssh/authorized_keys
 
to make sure we haven't added extra keys that you weren't expecting.
 
EOF

 

参考文档: https://sysadminfun.com/2014/11/17/116/

  • 0
    点赞
  • 0
    评论
  • 2
    收藏
  • 打赏
    打赏
  • 扫一扫,分享海报

©️2022 CSDN 皮肤主题:大白 设计师:CSDN官方博客 返回首页

打赏作者

OnTheWay_Seeking

你的鼓励将是我创作的最大动力

¥2 ¥4 ¥6 ¥10 ¥20
输入1-500的整数
余额支付 (余额:-- )
扫码支付
扫码支付:¥2
获取中
扫码支付

您的余额不足,请更换扫码支付或充值

打赏作者

实付
使用余额支付
点击重新获取
扫码支付
钱包余额 0

抵扣说明:

1.余额是钱包充值的虚拟货币,按照1:1的比例进行支付金额的抵扣。
2.余额无法直接购买下载,可以购买VIP、C币套餐、付费专栏及课程。

余额充值